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I ictingnf qaims: 

Claim I . (original): An apparatus for key management comprising: 

C3) a muititude of key registers, said mu.titude of Uey registers having a hierarchy w.* 

levels; 

a multitude of type fields. whe..n each type field is assoc.ated with a key agister. 
(.> alceyma„agementcontro.ler.saidlceyma„agementcontrollerhavingamultitudeof 

modes; 

(d) at least one initialization vector; 

(e) key management algorithms; and 

(f) key management functions; 

said mode. 

„„rf„ lurtKt includes a rinhn CUMMltlCBCl mode. 
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Claim 4. (cun^nUy amended): m appamtus according to claim 2 wherein said multitude of 
modes further inchides an Fl^rtmnic Codebook (ECBl mode. 



Claim 5. (original): The apparatus according to claim 4 wherein said ECB mode uses a 
deteiministic non-identity function. 

Claim 6. (original): The apparatus according to claim 4 wherein said ECB mode uses swapped 
key blocks. 

Claim 7. (Original): The apparatus according to claim 3 wherein said CBC mode uses a firmware 
specified initialization vector. 

Claim 8. (original): The apparatus according to claim 2 wherein said CBC mode uses an 
initialization vector to w,.p level i red key bits, said initialization vector determined by 

level i. 

Claim 9. (original): The apparatus according to claim 2 wherein said CBC mode uses an 

initialization vector to unwrap black bits to level j. said initialization vector determined by 

level j. 

Clain. 1 0. (Original): ^e apparatus according to claim 4 wherein at level 0 said mode is ECB 
mode and said multitude of functions include: 
(a) an encode function; and 
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(b) a decode function. 



Claim 



im n. (original): The apparatus accorfing to claim 4 wherein at level 1 said multitude of 



functions includes: 

(a) an unwrap black bits to level 0 function, wherein said mode is a CBC mode with a 

firmware specified initialization vector; and 

(b) an encode data function, wherein said mode is an ECB mode using a swapped key 

blocks. 

Claim 12. (original): The apparatus according to claim 4 wherein at level 2 said multitude of 

functions includes: 

(a) a wrap level i red key bits, wherein said mode is a CBC mode with an initialization 
vector determined by the level i; 

(b) an export black bits function; 

(c) an unwrap black bits to level j as determined by firmware, wherein said mode is 
CBC' mode with an initialization vector determined by the level j; and 

(d) an import red key bits as level 0 function. 

Claim 13. (original): A method for generating an encoded value having a first encoded value part 
and a second encoded value part from an unencoded value having a first unencoded value 
part and a second unencoded value part, comprising the steps of: 

(a) obtaining an initialization vector; 

(b) generating the first encoded value part by: 
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(i) generating a first result by encrypting the first unencoded value part; 

(ii) generating a second result by performing an exclusive or operation on the first 
result and the second unencoded vahie part; 

(iii) generating a third result by perfonning an exclusive or operation on the second 
result and the initialization vector; 

(iv) generating a fourth result by encrypting the third result; 

(v) generating a fifth result by performing an exclusive or operation on the fourtii 
result and the first unencoded vahie part; and 

(vi) encrypting the fifth result; and 

(c) generating the second encoded value part by encrypting the second result. 

Claim 14, (original): A method accottling to claim 13, wherein said stq) of obtaining an 
initialization vector further includes the steps of: 

(a) determining a hierarchical level for the encoded value; and 

(b) obtaining the initialization vector determined by the hierarchical level. 

Claim 15, (original): A method for generating an unencoded value having a first unencoded 

value part and a second unencoded value part fi-om an encoded value having a first encoded 
value part and a second encoded value part, comprising the steps of: 

(a) obtaining an initialization vector; 

(b) generating the first unencoded value part by: 

(i) generating a first result by decrypting the second encoded value part; 



-6- 

PACE9/«-RCVDAT7M/20«5:3l:4OPMIEastemDaylIshtT.rne,.SVR:USPTO^FX - DURATION (mn«s,:0e.1 6 



_ S713P300T1 10:17038729306 PftGE:10 

JUL-01 04 17:30 FROM: 571323m ri 

Appl. No. 09/61 3^&4 

Anidt. dated July t. 2004 

Reply to Office Action of March 1 . 2004 

(ii) generating a second result by performing an exclusive or operation on the first 
result and the initialization vector; 

(iii) generating a third result by encrypting the second result; 

(iv) generating a fourth result by decrypting the second encoded value part; and 
(V) performing an exclusive or operation on the third result and the fourth result;. 

(c) generating the second unencoded value part by: 

(i) generating a fifth result by encrypting the first unencoded vahie part; and 

(ii) generating a sixth result by decrypting the second encoded value part; and 

(d) performing an exclusive or operation on the fifth result and the sixth result. 

Claim 16. (original): A method according to claim 15, wherein said step of obtaining an 
initialization vector further includes the steps of: 

(a) determining a hierarchical level for the encoded value; and 

(b) obtaining the initialization vector detemiined by the hierarchical level 
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